Cyber Crisis Management Exercise Professional (C2MEP)

Image

An immersion into planning, developing, conducting, and assessing tabletop cyber war games that leverages the best of U.S. and international standards as well as industry best practices. The ability to plan, develop, deliver, and assess tabletop war games are essential skills required to validate an organization's incident response and cyber crisis management plans. Acquiring this certification demonstrates a unique and specialized set of knowledge, skills, and abilities.

This is the second course in the Cyber Crisis Management Professional series. The first course is the Cyber Crisis Management Planning Professional (C2MP2). The final course is the Cyber Crisis Management Leadership Professional (C2MLP). Despite our recommendation that students complete the certification series, it is not required and each course stands alone and provides independent value.

The ability to plan, develop, deliver, and assess tabletop war games are essential skills required to validate an organization's incident response and cyber crisis management plans.  Acquiring this certification demonstrates a unique and specialized set of knowledge, skills, and abilities.

COURSE OUTLINE

  • Course welcome

  • Course objectives

  • Incident response maturity

  • Incident response maturity phases

  • Hazard Mitigation Plan & Threat and Hazard Identification and Risk Assessment (HMP/THIRA)

  • U.S. Homeland Security Exercise and Evaluation Program (HSEEP)

  • NIST 800-34: Contingency Planning in Federal Information Systems

  • NIST 800-61: Computer Security Incident Handling Guide

  • NIST 800-84: Guide to Test, Training, and Exercise Programs

  • NIST 800-184: Guide for Cybersecurity Event Recovery

  • ISO 27035: Information Security Incident Management

  • ISO 22398: Societal Security - Guidelines for Exercises

  • Exercise types and methods

  • Exercise program guidelines

  • Exercise program policy and governance

  • Exercise roles and responsibilities

  • Exercise Phases: Plan, Build, Deliver, Evaluate, and Optimize

  • Plan: Risk scenarios

  • Plan: Initial planning meeting

  • Plan: Midterm planning meeting

  • Plan: Final planning meeting

  • Plan: Exercise Plan/Situation Manual

  • Build: Master Event and Inject List

  • Build: Injects

  • Build: Facilitator Guide

  • Build: Participant Guide

  • Build: Observer Guide

  • Deliver: Exercise logistics

  • Deliver: Exercise materials

  • Deliver: Exercise conclusion

  • Evaluate: After-Actin Reporting

  • Optimize: Exercise improvement planning

  • Optimize: Program metrics and reporting

  • Optimize: Program improvement planning

  • Course review

  • End of course examination

    • Online​

    • 50 multiple choice questions

    • Two hours

    • 70% passing score

    • Digital badge